This job board is a service to companies with tech positions in the state of Maine and the region. These are NOT jobs at MTUG; please do not contact MTUG about these jobs. Please see the position details below for employer contact info.

Senior Information Security Analyst

Portland, ME

Contact Details

[ A Note from MTUG: The below Employer's Job Description field may not contain the employer's full job description or application details due to limits in this job board tool. All employers are encouraged to provide a site link (shown above) to their primary job listing location -- please refer to that link for full description/application details. Thank you! ]

Employer's Job Description

Position Summary: The successful candidate will assist in the development and implementation of the Information Security program. The Senior Information Security Analyst will be a key contributor in monitoring and analyzing traffic and logs, automating data collection and processes, and assist in protecting the organization's IT systems and software from malicious activity and technology breaches. Participates and leads security risk assessments, perform and analyze vulnerability scans, work with others in IT and the business to remediate and eliminate risks. The Senior Information Security Analyst is responsible for providing expert technical knowledge, standards development, program development, risk assessment, data analysis, reporting, and awareness education related to information security. Key Outcomes: • Assist in leading in monitoring SIEM, IDS/IPS, endpoint protections, and identity management solutions. • Assist in leading the data engineering for the analysis, visualization, and orchestration of security logs and events. • Assist in leading efforts in monitoring and auditing information systems, networks, and databases to identify and isolate occurrences of unauthorized activity; prepares and coordinates corrective actions. • Assist in leading and conducting security assessments and audits, penetration testing, IT forensic investigations and incident management. • Perform and/or coordinate regular security assessments of existing or new infrastructure or applications. • Assist in leading and coordinating response to information security incidents and threats • Assess, manage, and coordinate information and cyber vulnerabilities throughout the organization. • Has a thorough understanding of the latest security exploits and how to prevent or detect them. • Develops, defines, reviews and enforces information security policy, standards and guidelines for business operations and technology implementations. • Proactively identifies information and IT security risks including IT technical implementations or business processes. • Coordinates group-wide and company-wide information security matters such as incident response, intrusion detection management, and cyber security advisories. Education/Experience: • B.S. or B.A. degree in CIS, CS, Business Administration, or similar, or combination of equivalent education and experience. • 6-10 years of experience with information security technologies, security monitoring, incident response, open source technologies, and various operating systems. • Healthcare experience and familiarity with HIPAA/HITECH, PCI-DSS, and/or NIST 800-171 is required. * In compliance with MPHC’s Department of Defense government contract, any/all persons hired for this position will need to verify their US citizenship and complete the required employment eligibility verification upon hire. Required License(s) and/or Certification(s): • Global Information Assurance Certification (GIAC), Certified Information Systems Security Professional (CISSP), Offensive Security Certified Professional (OSCP), and/or Certified Information Systems Auditor (CISA) is highly desired.